0fdd4fdefecd1d70b315b6d003dbf346_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0fdd4fdefecd1d70b315b6d003dbf346_JaffaCakes118
Size

15KB
MD5

0fdd4fdefecd1d70b315b6d003dbf346
SHA1

5eb2ee5e1727d18051df1a7b0b4fcd379cc7ff68
SHA256

ee8094db39fa637a2202aab8ae5e282e24866c1fef478bca8d5427c7296ce179
SHA512

ef23bdc9bf5ba9ae1a56eb042a34963f7bc0ea35533e2ad0fff6a0ce00b135f03bcd7e8f0b1d65da0247a321367a129feca2ed128fe8d34419aa48a56f81c9c2
SSDEEP

192:NEJ/P1oyn75ae413tHDd7Vl1D3GvJoRvs6WYsF81pUE2Hj2Felb2yK3u5m9U:NEJH143tjd7LJ3Q8/cjayIuQ2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0fdd4fdefecd1d70b315b6d003dbf346_JaffaCakes118

Files

0fdd4fdefecd1d70b315b6d003dbf346_JaffaCakes118
.exe windows:4 windows x86 arch:x86

62864306c931c58c13831e9ef9e20215

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegOpenKeyExA

msvcrt

exit
_acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
_XcptFilter
__p__fmode
__set_app_type
_except_handler3
_controlfp
_exit
calloc
__p__commode

kernel32

GetStartupInfoA
GetModuleHandleA

Sections

.rdata
Size: 1024B - Virtual size: 542B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 37KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ